Warning: New Malware Emerges in Attacks Exploiting Ivanti VPN Vulnerabilities -

Warning: New Malware Emerges in Attacks Exploiting Ivanti VPN Vulnerabilities

Google-owned Mandiant said it identified new malware employed by a China-nexus espionage threat actor known as UNC5221 and other threat groups during post-exploitation activity targeting Ivanti Connect Secure VPN and Policy Secure devices. This includes custom web shells such as BUSHWALK, CHAINLINE, FRAMESTING, and a variant of LIGHTWIRE. “CHAINLINE is a Python web shell backdoor that…

February 1, 2024

Google-owned Mandiant said it identified new malware employed by a China-nexus espionage threat actor known as UNC5221 and other threat groups during post-exploitation activity targeting Ivanti Connect Secure VPN and Policy Secure devices.
This includes custom web shells such as BUSHWALK, CHAINLINE, FRAMESTING, and a variant of LIGHTWIRE.
“CHAINLINE is a Python web shell backdoor that is

Warning: New Malware Emerges in Attacks Exploiting Ivanti VPN Vulnerabilities

Leave a Reply Cancel reply

Related Posts

Severe Security Flaws Patched in Microsoft Dynamics 365 and Power Apps Web API

Cross-Domain Attacks: A Growing Threat to Modern Security and How to Combat Them

Three Russian-German Nationals Charged with Espionage for Russian Secret Service